Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lz16Bl3pC1UPxwU9G2GAsxUQq1w.roa
File: lz16Bl3pC1UPxwU9G2GAsxUQq1w.roa (raw, json)
Hash identifier: /i8v5CdBc8LMBTDH7wnjJJmltyEdRWw6l+NpQgDr59k=
Subject key identifier: 97:3D:7A:06:5D:E9:0B:55:0F:C7:05:3D:1B:61:80:B3:15:10:AB:5C
Certificate issuer: /CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Certificate serial: 018D7F3598F32E650039456F29B623172AB8
Authority key identifier: 6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lz16Bl3pC1UPxwU9G2GAsxUQq1w.roa
Signing time: Tue 06 Feb 2024 16:17:15 +0000
ROA not before: Tue 06 Feb 2024 16:17:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198057
IP address blocks: 2a0f:b241:14::/48 maxlen: 48
Validation: Failed, certificate revoked on Wed 07 Feb 2024 04:55:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:7f:35:98:f3:2e:65:00:39:45:6f:29:b6:23:17:2a:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e87104a4db4c46371a7f8b6a441fc30ecdfe20f
Validity
Not Before: Feb 6 16:17:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=973d7a065de90b550fc7053d1b6180b31510ab5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:92:b6:80:41:35:31:79:8d:99:f4:25:5d:e8:
1e:81:0e:39:13:d0:f6:87:0a:f2:96:c9:4d:a7:a4:
9a:cf:cc:11:5d:df:cb:50:ab:e4:bd:a0:a2:80:6e:
97:83:a4:40:52:5d:2d:09:da:c9:3e:af:5a:87:15:
15:f0:4a:9a:16:85:2a:8a:33:91:11:69:b9:3c:d6:
59:19:57:89:e2:ea:0d:ac:22:0f:72:38:5e:c1:8c:
cb:b0:a7:96:e5:26:35:7c:43:7d:32:ed:78:52:a4:
1d:0c:08:0e:ab:e1:d3:24:46:d1:ff:6c:39:f8:55:
74:5c:28:1e:7d:d3:5d:37:43:c4:88:8f:13:df:a7:
15:a1:54:e6:8a:4d:b8:39:99:df:b1:82:f5:ea:f0:
30:f7:8f:56:44:87:c5:1c:e8:10:34:6b:f6:70:de:
f2:80:24:a8:f9:38:17:17:c5:8f:64:41:02:05:77:
6b:97:eb:07:8d:1d:ff:d7:f5:79:1c:25:3c:91:14:
a3:d1:af:f9:30:a1:42:9c:38:34:02:35:1c:61:74:
cb:47:2f:3c:5b:10:3f:dd:8e:68:ae:75:2b:27:8e:
d3:ec:cc:e3:e5:44:73:82:e9:ef:15:50:94:f9:de:
8f:24:9d:42:8f:d1:21:b6:21:cb:2d:23:fe:ff:38:
9e:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:3D:7A:06:5D:E9:0B:55:0F:C7:05:3D:1B:61:80:B3:15:10:AB:5C
X509v3 Authority Key Identifier:
keyid:6E:87:10:4A:4D:B4:C4:63:71:A7:F8:B6:A4:41:FC:30:EC:DF:E2:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bocQSk20xGNxp_i2pEH8MOzf4g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/lz16Bl3pC1UPxwU9G2GAsxUQq1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b87ec0-f75a-4bbe-b067-b717980e4ad6/1/bocQSk20xGNxp_i2pEH8MOzf4g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0f:b241:14::/48
Signature Algorithm: sha256WithRSAEncryption
15:6d:e0:e2:4d:c1:4a:56:11:5a:d1:89:c7:02:4b:e9:a7:f0:
fa:47:12:cb:c1:40:a2:6a:69:c7:b8:4d:b2:c6:83:46:3c:11:
0f:0d:09:ec:8e:1d:ce:bc:ca:59:21:fb:12:ed:7c:c3:3f:4f:
3c:fe:81:5f:62:7c:f4:f7:e3:15:2d:6e:0d:1c:d9:57:46:c2:
6f:59:31:77:41:e2:d0:41:19:7e:b9:eb:c2:0f:bd:6f:6a:bf:
24:14:a0:bf:6c:a9:db:1c:5b:0e:06:46:b0:d9:2d:aa:af:67:
e5:a1:7a:1c:0d:13:40:88:b4:88:fd:65:5a:c0:42:7a:91:e4:
fa:a7:97:d5:21:84:d5:61:4a:f7:5b:56:8e:25:70:bb:c7:3f:
13:35:fb:4c:97:ee:9a:29:a0:87:9e:69:2a:07:90:50:94:8b:
21:06:e8:88:0d:16:dd:0b:97:f8:23:21:87:1f:72:41:c3:07:
81:8e:8a:b1:ff:ac:6f:a6:22:21:5e:9d:12:4b:eb:9d:04:7c:
7a:6d:ef:40:59:38:68:ce:14:f0:77:3e:fc:a3:e9:2f:e1:46:
5e:bf:2b:6f:50:4f:dd:0d:9a:eb:03:6f:bb:50:51:ed:f8:dd:
a5:cf:4e:eb:83:d0:08:9c:e7:f0:92:d7:ae:d2:88:f7:05:f1:
33:85:bb:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:10 2024 by rpki-client on console-ams.rpki-client.org